[Hawkular-dev] Tenancy on Hawkular Services
Juraci Paixão Kröhling
jpkroehling at redhat.com
Tue May 10 12:33:51 EDT 2016
On 10.05.2016 18:16, Gary Brown wrote:
> So just to be clear, this means that there is no server side validation to ensure the user is able to read from/write to the supplied tenant? This would have to be handled in the client aswell?
Correct, we rely on accurate tenant information being provided by the
client. Such authorization checks are to be done at the client level as
well.
- Juca.
More information about the hawkular-dev
mailing list